• Collaborate with product and engineering teams to integrate security principles into the design and architecture of cloud infrastructure across multiple clouds (AWS, GCP, Azure, and others). • Secure Temporal's core platform components, including the workflow engine, task queue architecture, and worker execution model - identifying attack surfaces unique to durable, stateful distributed systems. • Conduct threat modeling and risk assessments to identify vulnerabilities and potential attack vectors across our multi-cloud environment, with particular focus on workflow execution, task queue integrity, and client-server trust boundaries. • Secure Temporal's gRPC-based communication layer, including mTLS certificate management, service mesh configuration, and API authentication. • Manage cloud security posture using tools such as Wiz, including misconfiguration detection, compliance monitoring, and remediation across all three cloud providers. • Stay current on emerging cloud security standards and guidance (e.g. CSA Cloud Controls Matrix, CIS Benchmarks) and translate these into actionable internal policy. • Able to participate in on-call rotation.

• Utilising knowledge of pen test and red teaming engagements and techniques to plan, write and improve offensive security labs, challenges and online learning content on the Immersive One platform. • Produce multi-format content utilising various teaching methods; practical exercises, questions & gamification • Test Red Team labs and ranges to ensure they function as expected • Research vulnerabilities, tools and offensive tactics and compile this research to deliver practical and theory labs to users • Compile technical research into understandable concise content for both technical and non-technical audience • Work with the wider Product team on new projects and product innovations and how best to deploy them

Role Description Sigma Defense is seeking a Cybersecurity Lead Engineer to support an enterprise DevSecOps platform. - Support DevSecOps and Software Engineers in developing secure platforms and effectively communicating regarding the risk posture of the platforms. - Support of full RMF lifecycle for authorization and re-authorization of existing and novel capabilities including regular communication with stakeholders and authorizing personnel. - Identification and reduction of system vulnerabilities to achieve compliance objectives. - Mentorship and proliferation of cybersecurity culture within team. Qualifications - 8-10 years of Cybersecurity experience. - Experience with DoW RMF policy. - Experience maintaining cybersecurity on an enterprise DevSecOps platform. - Registered DoW RMF Practitioner (RDRP) is preferred. - Must be a U.S. citizen. Requirements - Mandatory Certifications: CISSP - Personnel Clearance Level: Candidate must possess or have the ability to obtain an active Secret security clearance or higher. Clearance may be sponsored for the right candidate. - Education Requirements: Bachelor's degree from an accredited college or university in Cyber Security, Information Technology, Information Systems, Computer Science, Computer Engineering, Mathematics, or related field of study. Degree may be substituted for comparable additional industry experience and/or industry accepted training and certification. Benefits - Salary Range: $135,000 - $145,000 annually. - Dental and Vision Insurance - Medical Insurance to Include HSA, FSA, and DFSA Plans - Life and AD&D coverage - Employee Assistance Program (EAP) - 401(k) Plan with Company Matching Contributions - 160 Hours of Paid Time Off (PTO) - 12 (Floating) Holidays - Educational Assistance - Highly Competitive Salary

• We are seeking a highly motivated Senior Security Engineer with a strong passion for Identity and Access Management (IAM) to join our Enterprise Security & Infrastructure (ESI) organization. • The ideal candidate brings hands-on experience designing, engineering, implementing, and supporting enterprise-scale identity solutions across hybrid environments (on-premises and cloud). • This role requires a deep understanding of modern identity technologies, along with the ability to secure and optimize identity platforms that support critical business operations. • A successful engineer in this role will maintain awareness of new security and identity trends, research, evaluate, design, and recommend technical security solutions for the enterprise. • This role is critical in ensuring the secure, efficient, and compliant management of identities and access across the organization, helping to protect enterprise assets while enabling business productivity. • The Senior Security Engineer, Identity & Access Management is responsible for designing, implementing, and maintaining secure, scalable IAM solutions across hybrid environments, while driving modernization toward Zero Trust and cloud-based identity models. • This role focuses on engineering automated identity processes, strengthening access governance and privileged access controls, and integrating AI-enabled capabilities to enhance security and operational efficiency. • The engineer partners closely with cross-functional teams to assess and mitigate identity-related risks, implements monitoring and automated response for identity threats, and contributes to technology evaluation and innovation. • Additionally, the role ensures compliance with regulatory requirements, supports audit readiness, and establishes standards and best practices to continuously improve enterprise identity security.